Cybereason:获融$200M 大数据驱动终端防护
【190805 TC】Cybereason, which uses machine learning to increase the number of endpoints a single analyst can manage across a network of distributed resources, has raised $200 million in new financing from SoftBank Group and its affiliates.
It’s a sign of the belief that SoftBank has in the technology, since the Japanese investment firm is basically doubling down on commitments it made to the Boston-based company four years ago.
The company first came to our attention five years ago when it raised a $25 million financing from investors, including CRV, Spark Capital and Lockheed Martin.
Cybereason’s technology processes and analyzes data in real time across an organization’s daily operations and relationships. It looks for anomalies in behavior across nodes on networks and uses those anomalies to flag suspicious activity.
The company also provides reporting tools to inform customers of the root cause, the timeline, the person involved in the breach or breaches, which tools they use and what information was being disseminated within and outside of the organization.
For co-founder Lior Div, Cybereason’s work is the continuation of the six years of training and service he spent working with the Israeli army’s 8200 Unit, the military incubator for half of the security startups pitching their wares today. After his time in the military, Div worked for the Israeli government as a private contractor reverse-engineering hacking operations.
Over the last two years, Cybereason has expanded the scope of its service to a network that spans 6 million endpoints tracked by 500 employees, with offices in Boston, Tel Aviv, Tokyo and London.
“Cybereason’s big data analytics approach to mitigating cyber risk has fueled explosive expansion at the leading edge of the EDR domain, disrupting the EPP market. We are leading the wave, becoming the world’s most reliable and effective endpoint prevention and detection solution because of our technology, our people and our partners,” said Div, in a statement. “We help all security teams prevent more attacks, sooner, in ways that enable understanding and taking decisive action faster.”
The company said it will use the new funding to accelerate its sales and marketing efforts across all geographies and push further ahead with research and development to make more of its security operations autonomous.
“Today, there is a shortage of more than three million level 1-3 analysts,” said Yonatan Striem-Amit, chief technology officer and co-founder, Cybereason, in a statement. “The new autonomous SOC enables SOC teams of the future to harness technology where manual work is being relied on today and it will elevate L1 analysts to spend time on higher value tasks and accelerate the advanced analysis L3 analysts do.”
Most recently the company was behind the discovery of Operation SoftCell, the largest nation-state cyber espionage attack on telecommunications companies.
That attack, which was either conducted by Chinese-backed actors or made to look like it was conducted by Chinese-backed actors, according to Cybereason, targeted a select group of users in an effort to acquire cell phone records.
As we wrote at the time:
… hackers have systematically broken in to more than 10 cell networks around the world to date over the past seven years to obtain massive amounts of call records — including times and dates of calls, and their cell-based locations — on at least 20 individuals.
Researchers at Boston-based Cybereason, who discovered the operation and shared their findings with TechCrunch, said the hackers could track the physical location of any customer of the hacked telcos — including spies and politicians — using the call records.
Lior Div, Cybereason’s co-founder and chief executive, told TechCrunch it’s “massive-scale” espionage.
Call detail records — or CDRs — are the crown jewels of any intelligence agency’s collection efforts. These call records are highly detailed metadata logs generated by a phone provider to connect calls and messages from one person to another. Although they don’t include the recordings of calls or the contents of messages, they can offer detailed insight into a person’s life. The National Security Agency has for years controversially collected the call records of Americans from cell providers like AT&T and Verizon (which owns TechCrunch), despite the questionable legality.
It’s not the first time that Cybereason has uncovered major security threats.
Back when it had just raised capital from CRV and Spark, Cybereason’s chief executive was touting its work with a defense contractor who’d been hacked. Again, the suspected culprit was the Chinese government.
As we reported, during one of the early product demos for a private defense contractor, Cybereason identified a full-blown attack by the Chinese — 10,000 thousand usernames and passwords were leaked, and the attackers had access to nearly half of the organization on a daily basis.
The security breach was too sensitive to be shared with the press, but Div says that the FBI was involved and that the company had no indication that they were being hacked until Cybereason detected it.
网安团队找钱 / 投资人找网安项目
+微信 junshao
—— 全球网安投融事件 TimeLine ——
2019年7月
【智能安防】WatchGuard:被Moto系统并购 强化视频安防
【业务安全】Digital Shadows:获融$10M 专注DRP
【整体并购】SkyFormation:被Exabeam并购 加码云安全
2019年6月
【安全测评】SecurityScorecard:获融$50M
【二级市场】CrowdStrike: IPO首日涨幅65% 估值超过$10B
【整体并购】Insight Partners:领投SentinelOne 并购Recorded Future
2019年5月
【威胁情报】BlueVoyant:获融$82.5M 安全托管及威胁情报
【整体并购】Appsulate:被Zscaler并购 布局浏览器安全
【整体并购】Verodin:被FireEye以$250M并购 布局安全测评
【安全管理】Exabeam:获融$75M AI驱动SIEM革新
【威胁情报】ID Agent:被Kaseya并购 布局暗网监控与威胁情报
2019年4月
【身份认证】Cambridge区块链:获融$3.5M 身份认证与合规管理
【整体并购】NetFort:被Rapid7并购 强化流量分析
2019年3月
【整体并购】Azuqua:被Okta以$52.5M并购 加强可视化与自动化
2019年2月
【身份认证】SpyCloud:获融$21M M12领投 ATO
【整体并购】Demisto:被平底锅$560M并购 提升应急自动化
【整体并购】Luminate:被赛门铁克$200M并购 加码云安全
【数据安全】Illumio:获融$65M JP摩根领投 自适应分片
【应用安全】Signal Sciences:获融$35M 加码Web应用安全
2019年1月
【身份认证】OneLogin:获融$100M 企业级身份认证
【网络安全】360企业安全:获融¥9亿 投后估值¥206.5亿
2018年12月
【金融风控】AccessFintech:获融$17.5M 金融网络风控
【整体并购】Arctic Wolf:并购RootSecure 布局网络风险测评
【系统安全】Tigera:获融$30M 致力K8s安全与合规
【企业安全】360企安:获融¥12.5亿 投后估值¥187.5亿
2018年11月
【云安全】Netskope:获融$168.7M 云安全领导者&顶级CASB
【IoT】Dust Identity:获融$2.3M 钻石防克隆安全标签
【整体并购】Bluefyre:Threat Stack将其并购 发力云安全
【业务安全】Shape Security:获融$26M 人工智能防黑客
2018年10月
【整体并购】Dome9:Check Point$175M将其并购 加码云安全
【反欺诈】Area 1:获融$32M 打造根据反钓鱼数量收费新模式
【云安全】Wallarm:获融$8M 提供基于AI的自适应云安全
【数据安全】CybelAngel:获融$12M 致力于DLP
【整体并购】Imperva:Thoma Bravo $2.1B将其并购 致力云安全
【安全管理】CloudKnox Raises:获融 $10.8M 防止权限管理失控
【整体并购】RedLock:平底锅$173M将其并购 布局云安全
【终端安全】Hysolate:获融$18M 混合架构兼顾终端安全与效率
【安全管理】Tanium:以投后$6.5B获融$200M 实时大规模终端安全管理
2018年9月
【网络安全】Darktrace:以投后$1.65B获融$50M 机器学习抵御网络威胁
【移动安全】Shape Security:获得E轮融资 致力于移动应用恶意攻击防护
【网络安全】Protocol 46:获融$1.1M 面向中小企业的军用级深度防御
【整体并购】Bitdefender:并购SMS eTech 加速拓展澳洲市场
【反欺诈】Ravelin:获融$8M 用机器学习对抗电商欺诈
【IoT】HawkEye 360:获融$5.3M 专注射频数据分析
【代码安全】Sonatype:获融$80M 专注开源安全检测
【网络安全】AnchorFree:VPN创企 获融$2.95亿
【合规风控】SynapseFI:致力于银行与Fintech融合 获融$1700万
2018年8月
【数据安全】AirTrunk: 超大规模数据中心 获融$6.21亿
【数据安全】Cloudian:企业数据管理 获融$9400万
【业务安全】扼制假消息 New Knowledge获融$1100万
【云安全】基于AI的云安全平台 Lacework获融$2400万
【安全管理】第三方网络风险管理 RiskRecon获融$2500万
【安全检测】AI驱动网安测评 RiskSense获融$1200万
【公共安全】智能城市及关键基础设施网安 iS5Com获融$1700万
【网安并购】Cisco以$23.5亿并购云身份认证创企DUO
2018年7月
【网安并购】Mimecast以$8800万并购威胁防护创企Solebit
【数据安全】敏感数据自动化管控 Integris获融$1000万
【金融风控】基于AI的反洗钱创企 ThetaRay获融$3000万
2018年6月
【邮件安全】机器学习驱动企业邮件安全 Tessian获融$1300万
【安全管理】数字资产安全创企 Panaseer获融$1000万
【端点安全】终端安全创企 CrowdStrike宣布获融$2亿
【安全检测】基于osquery的安全分析平台 Uptycs获融$1000万
【IoT】工业网安创企 Claroty获$6000万B轮融资
【端点安全】基于AI的威胁防护 Cylance获融$1.2亿
【业务安全】合规与自动化数据分类 DocAuthority获融$1000万
【安全管理】以色列国防级SOC Cyberbit获融$3000万
【安全管理】企业网安合规与风控 CyberSaint 获融$300万
2018年5月
【邮件安全】防止邮箱被人盗用 Valimail获融$2500万
【安全管理】企业级移动安全管理 Corrata获融€130万
【二级市场】360拟私募¥108亿 发力大数据、AI等九大方向
【应用安全】去服务器应用安全 Protego Labs获融$200万
【应用安全】SAP系统安全 ERP-Maestro获融$1200万
【威胁情报】LookingGlass并购高盛系威胁情报平台Sentinel
2018年4月
【移动安全】生物识别创企 SecuredTouch获融$800万
【应用安全】企业级应用安全 Onapsis获$3100万C轮融资
【IoT】车联网及无人驾驶安全 Karamba获融$1000万
【端点安全】下一代端点安全 Carbon Black拟在纳斯达克上市融资$1亿
【网络安全】软件即服务WAF Threat X获$820万A轮融资
2018年3月
【IoT】无人机探测雷达 Fortem获$1500万A轮融资
【区块链】金融数据安全 Spring Labs获融$1475万
【IoT】嵌入式设备安全 Red Balloon获$2190万A轮融资
【智能安防】机器人保安 Cobalt Robotics获融$1650万
【端点安全】进程监控 实时防护 Virsec获$2400万B轮融资
【企业并购】Palo Alto将$3亿收购云安全创企Evident.io
【云安全】混合云应用访问权限管理 Luminate获$1400万
【IoT】无人机驾驶安全 Airspace Systems获融$2000万
【威胁防护】通过无代码区识别恶意代码 Solebit 获融$1100万
2018年2月
【云安全】以插件代位WAF Templarbit获融$300万
【反欺诈】Proofpoint$2.25亿并购反钓鱼创企Wombat
2018年1月
【数据安全】帮助企业应对GDPR BigID获$1400万融资
【端点安全】混合架构协调效率与安全 Hysolate获$800万融资
【智能安防】巡逻机器人Knightscope获$2500万融资
【IoT】以色列创企VDOO获83North $1300万投资
【威胁情报】SaaS平台Anomali获$4000万D轮融资
【安全管理】外包SOC服务 Arctic Wolf获$1600万融资
2017年12月
【IoT】韩企Security Platform获软银$278万投资
【IoT】云车联网安全 Upstream获$900万A轮融资
【云安全】软件定义安全 ShieldX获$2500万B轮融资
【IoT】防护80亿个IoT终端 Cog获$350万A轮融资
【云安全】反恶意威胁云平台 Menlo获$4000万C轮融资
【移动安全】实时APP防护 Prevoty获$1300万B轮融资
2017年11月
【物联网】Tortuga Logic获融$200万打造芯片级安全
【威胁情报】ThreatQuotient获$3000万C轮融资
【智能安防】AI视频监控平台 博思廷获融¥3000万A+轮融资
【邮件安全】Proofpoint以$1.10亿收购Cloudmark
【工控安全】Enview通过AI及3D技术监控老旧管线获$600万A轮融资
2017年10月
【暗网监控】Recorded Future获$2500万E轮融资
【业务安全】网络访问控制创企ForeScout上市融资$1.16亿
【网安测评】SecurityScorecard获诺基亚$2750万C轮融资
2017年9月
【终端安全】实时防护创企Capsule8获$600万A轮融资
【容器安全】Aqua Security获$2500万B轮融资
【暗网防护】Digital Shadows获$2600万C轮融资